General

  • Target

    ba530445e16496e758bea9c8d704b3c4f47766e5a48e12d63a636266599a98c5

  • Size

    259KB

  • Sample

    241110-ckl3yawpbz

  • MD5

    ae302a9011b58fae402ad78abe755161

  • SHA1

    2c1a9404a8e886a95f27bdd528f6a85541f693c0

  • SHA256

    ba530445e16496e758bea9c8d704b3c4f47766e5a48e12d63a636266599a98c5

  • SHA512

    59487eac1c613c446d264d93f8c375e34e53b3999b198fd46283feda1fa6fa4ce523c89ff423bd210db68b7d6bb4a259ecb257cbdd22f7ede2ed0d6f599b95b9

  • SSDEEP

    3072:IQyJn+7EuQKTqpv9f9jgn6G1hL4AS2OkOhlUEArocsFFs2uxoplbdPaKDv9y3L5o:J4n+7CKo9f9sTH4kOk6ArockNQKJbW

Malware Config

Targets

    • Target

      ba530445e16496e758bea9c8d704b3c4f47766e5a48e12d63a636266599a98c5

    • Size

      259KB

    • MD5

      ae302a9011b58fae402ad78abe755161

    • SHA1

      2c1a9404a8e886a95f27bdd528f6a85541f693c0

    • SHA256

      ba530445e16496e758bea9c8d704b3c4f47766e5a48e12d63a636266599a98c5

    • SHA512

      59487eac1c613c446d264d93f8c375e34e53b3999b198fd46283feda1fa6fa4ce523c89ff423bd210db68b7d6bb4a259ecb257cbdd22f7ede2ed0d6f599b95b9

    • SSDEEP

      3072:IQyJn+7EuQKTqpv9f9jgn6G1hL4AS2OkOhlUEArocsFFs2uxoplbdPaKDv9y3L5o:J4n+7CKo9f9sTH4kOk6ArockNQKJbW

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks